The remote host is missing an update to screenannounced via advisory USN-370-1.

A security issue affects the following Ubuntu releases:

Ubuntu 5.04Ubuntu 5.10Ubuntu 6.06 LTSUbuntu 6.10

This advisory also applies to the corresponding versions ofKubuntu, Edubuntu, and Xubuntu.

Details follow:

cstone and Rich Felker discovered a programming error in the UTF8 string handling code of screen leading to a denial of service. If a crafted string was displayed within a screen session, screen would crash or possibly execute arbitrary code.

Solution:The problem can be corrected by upgrading your system to thefollowing package versions:

Ubuntu 5.04: screen 4.0.2-4.1ubuntu2.5.04

Ubuntu 5.10: screen 4.0.2-4.1ubuntu2.5.10

Ubuntu 6.06 LTS: screen 4.0.2-4.1ubuntu5.6.06

Ubuntu 6.10: screen 4.0.2-4.1ubuntu5.6.10

After a standard system upgrade you need to restart any running screen sessions to effect the necessary changes.